CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bent...@cvs.openbsd.org 2023/09/13 21:51:43 Modified files: infrastructure/mk: font.port.mk fonts/arabeyes-ttf: Makefile fonts/atkinson-hyperlegible: Makefile fonts/clearsans: Makefile fonts/hermit-font: Makefile fonts/jetbrains-mono: Makefile fonts/victor-mono: Makefile Log message: Eliminate redundant variables FONT_DISTDIR and FONT_DISTSUBDIR. ok sthen@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: dan...@cvs.openbsd.org 2023/09/13 20:31:19 Modified files: math/veusz : Makefile distinfo math/veusz/pkg : PLIST Log message: unbreak veusz by updating to 3.6.2
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: dan...@cvs.openbsd.org 2023/09/13 20:20:56 Modified files: devel/ipython : Makefile distinfo devel/ipython/patches: patch-IPython_core_tests_test_interactiveshell_py devel/ipython/pkg: PLIST Log message: update ipython to 8.13.2
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 18:41:35 Modified files: security/gpgme : Makefile distinfo security/gpgme/patches: patch-configure patch-lang_cpp_tests_Makefile_in patch-lang_qt_Makefile_in patch-lang_qt_tests_Makefile_in Added files: security/gpgme/patches: patch-lang_qt_tests_run-importjob_cpp Log message: update to gpgme-1.22.0
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 18:03:38 Modified files: security/gopass: Makefile distinfo modules.inc Log message: update to gopass-1.15.8
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 17:56:36 Modified files: devel/go-tools : Makefile distinfo modules.inc Log message: update to go-tools-0.9.0
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 17:56:35 Modified files: mail/milter-regex: Makefile distinfo Log message: update to milter-regex-2.7
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 17:55:09 Modified files: audio/picard : Makefile distinfo Log message: update to picard-2.9.2
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: na...@cvs.openbsd.org 2023/09/13 15:17:19 Modified files: devel/mpfr : Makefile distinfo Log message: devel/mpfr: update to bugfix release 4.2.1
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: fcam...@cvs.openbsd.org 2023/09/13 14:40:13 Modified files: devel/perltidy : Makefile distinfo Log message: Update perltidy to 20230912.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: fcam...@cvs.openbsd.org 2023/09/13 14:28:03 Modified files: sysutils/ncdu : Makefile distinfo Log message: Update ncdu to 1.19 and take maintainership.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: rob...@cvs.openbsd.org 2023/09/13 13:55:22 Modified files: www/chromium : Makefile distinfo www/chromium/patches: patch-BUILD_gn patch-ash_display_mirror_window_controller_cc patch-base_BUILD_gn patch-base_allocator_partition_allocator_address_space_randomization_h patch-base_allocator_partition_allocator_page_allocator_constants_h patch-base_allocator_partition_allocator_page_allocator_h patch-base_allocator_partition_allocator_page_allocator_internals_posix_h patch-base_allocator_partition_allocator_partition_alloc_base_rand_util_posix_cc patch-base_allocator_partition_allocator_partition_alloc_config_h patch-base_allocator_partition_allocator_partition_alloc_constants_h patch-base_allocator_partition_allocator_partition_alloc_gni patch-base_allocator_partition_allocator_partition_root_cc patch-base_allocator_partition_allocator_starscan_stack_stack_cc patch-base_base_switches_cc patch-base_base_switches_h patch-base_debug_elf_reader_cc patch-base_debug_stack_trace_posix_cc patch-base_files_file_path_watcher_unittest_cc patch-base_i18n_icu_util_cc patch-base_linux_util_cc patch-base_process_process_metrics_h patch-base_process_process_metrics_openbsd_cc patch-base_process_process_posix_cc patch-base_profiler_module_cache_cc patch-base_system_sys_info_cc patch-base_system_sys_info_h patch-base_test_test_file_util_linux_cc patch-base_threading_platform_thread_posix_cc patch-base_threading_platform_thread_unittest_cc patch-base_trace_event_malloc_dump_provider_cc patch-build_config_compiler_BUILD_gn patch-build_config_compiler_pgo_BUILD_gn patch-build_toolchain_gcc_toolchain_gni patch-build_toolchain_toolchain_gni patch-cc_BUILD_gn patch-chrome_app_app_management_strings_grdp patch-chrome_app_chrome_command_ids_h patch-chrome_app_chrome_main_delegate_cc patch-chrome_app_chromium_strings_grd patch-chrome_app_generated_resources_grd patch-chrome_app_google_chrome_strings_grd patch-chrome_app_profiles_strings_grdp patch-chrome_app_settings_strings_grdp patch-chrome_app_theme_theme_resources_grd patch-chrome_browser_BUILD_gn patch-chrome_browser_about_flags_cc patch-chrome_browser_browser_features_cc patch-chrome_browser_browser_process_impl_cc patch-chrome_browser_browser_process_impl_h patch-chrome_browser_chrome_browser_interface_binders_cc patch-chrome_browser_chrome_browser_main_cc patch-chrome_browser_chrome_content_browser_client_cc patch-chrome_browser_chrome_content_browser_client_h patch-chrome_browser_content_settings_one_time_permission_provider_cc patch-chrome_browser_download_chrome_download_manager_delegate_cc patch-chrome_browser_download_download_commands_h patch-chrome_browser_download_download_item_model_cc patch-chrome_browser_download_download_prefs_cc patch-chrome_browser_enterprise_connectors_analysis_content_analysis_delegate_cc patch-chrome_browser_enterprise_connectors_connectors_service_cc patch-chrome_browser_enterprise_connectors_device_trust_device_trust_service_factory_cc
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 10:39:10 Modified files: net/routinator : Tag: OPENBSD_7_3 Makefile crates.inc distinfo Log message: update to routinator-0.12.2 - Fixed various decoding issues that could lead to a panic when processing invalid RPKI objects. (#891, via bcder release 0.7.3. Found by Haya Shulman, Donika Mirdita and Niklas Vogel. Assigned CVE-2023-39915) - Check the request URI when generating a path for storing a copy of a RRDP response with the rrdp-keep-responses option to avoid path traversal. (#892. Found by Haya Shulman, Donika Mirdita and Niklas Vogel. Assigned CVE-2023-39916.)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 10:38:37 Modified files: net/routinator : Makefile crates.inc distinfo Log message: update to routinator-0.12.2 - Fixed various decoding issues that could lead to a panic when processing invalid RPKI objects. (#891, via bcder release 0.7.3. Found by Haya Shulman, Donika Mirdita and Niklas Vogel. Assigned CVE-2023-39915) - Check the request URI when generating a path for storing a copy of a RRDP response with the rrdp-keep-responses option to avoid path traversal. (#892. Found by Haya Shulman, Donika Mirdita and Niklas Vogel. Assigned CVE-2023-39916.)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bl...@cvs.openbsd.org 2023/09/13 06:35:58 Modified files: net/p5-Net-DNS-SEC: Makefile distinfo Log message: update p5-Net-DNS-SEC to 1.22
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 06:27:21 Modified files: multimedia/motion/patches: patch-configure_ac Log message: change patch comment to reference the commit to motion rather than motionplus
Re: CVS: cvs.openbsd.org: ports
On Wed, Sep 13, 2023 at 06:05:41AM -0600, Landry Breuil wrote: > CVSROOT: /cvs > Module name: ports > Changes by: lan...@cvs.openbsd.org 2023/09/13 06:05:41 > > Added files: > multimedia/motion/patches: patch-configure_ac > > Log message: > multimedia/motion: backport upstream commit to fix build with libwebp 1.3.1 > > build failure reported by ajacoutot@, thanks ! Pas besoin pour stable ? -- Antoine
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 06:05:41 Added files: multimedia/motion/patches: patch-configure_ac Log message: multimedia/motion: backport upstream commit to fix build with libwebp 1.3.1 build failure reported by ajacoutot@, thanks !
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs
Module name:ports
Changes by: rob...@cvs.openbsd.org 2023/09/13 05:56:32
Modified files:
devel/llvm : Makefile.inc
devel/llvm/13 : Makefile
devel/llvm/13/pkg: PLIST-main
devel/llvm/16 : Makefile
devel/llvm/16/pkg: PLIST-main
Log message:
remove headers conflicting with base from the compiler's include path
we want the headers from base to be picked up so remove them from
ports as well in case they exist in /usr/include
${CLANG_INCLUDE_PATH}/float.h
${CLANG_INCLUDE_PATH}/inttypes.h
${CLANG_INCLUDE_PATH}/iso646.h
${CLANG_INCLUDE_PATH}/limits.h
${CLANG_INCLUDE_PATH}/stdarg.h
${CLANG_INCLUDE_PATH}/stdbool.h
${CLANG_INCLUDE_PATH}/stddef.h
${CLANG_INCLUDE_PATH}/stdint.h
${CLANG_INCLUDE_PATH}/tgmath.h
${CLANG_INCLUDE_PATH}/varargs.h
Re: CVS: cvs.openbsd.org: ports
Le Wed, Sep 13, 2023 at 01:50:44PM +0200, Antoine Jacoutot a écrit : > On Tue, Sep 12, 2023 at 07:39:31AM -0600, Landry Breuil wrote: > > CVSROOT:/cvs > > Module name:ports > > Changes by: lan...@cvs.openbsd.org 2023/09/12 07:39:31 > > > > Modified files: > > graphics/libwebp: Makefile distinfo > > > > Log message: > > graphics/libwebp: security update to 1.3.1 > > > > includes on top a fix for CVE-2023-4863: Heap buffer overflow in WebP. > > > > see > > https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html > > and https://chromium.googlesource.com/webm/libwebp/+/refs/heads/1.3.1 > > > > same diff from volker@ > > ok tb@ > > This might have broken multimedia/motion: woops. i guess https://github.com/Motion-Project/motionplus/issues/74 should fixit, testin'
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2023/09/13 05:52:20 Modified files: net/bro: Tag: OPENBSD_7_3 Makefile distinfo net/bro/pkg: Tag: OPENBSD_7_3 PLIST Log message: SECURITY update to zeek-5.0.10.
Re: CVS: cvs.openbsd.org: ports
On Tue, Sep 12, 2023 at 07:39:31AM -0600, Landry Breuil wrote: > CVSROOT: /cvs > Module name: ports > Changes by: lan...@cvs.openbsd.org 2023/09/12 07:39:31 > > Modified files: > graphics/libwebp: Makefile distinfo > > Log message: > graphics/libwebp: security update to 1.3.1 > > includes on top a fix for CVE-2023-4863: Heap buffer overflow in WebP. > > see > https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html > and https://chromium.googlesource.com/webm/libwebp/+/refs/heads/1.3.1 > > same diff from volker@ > ok tb@ This might have broken multimedia/motion: cc -D_THREAD_SAFE -I/usr/local/include -I/usr/local/include -I/usr/local/include/p11-kit-1 -I/usr/local/include -I/usr/local/include/webp -I/usr/local/include -I/usr/local/include -O2 -pipe -mfpmath=sse -msse3 -L/usr/local/lib -o motion motion.o logger.o conf.o draw.o jpegutils.o video_loopback.o video_v4l2.o video_common.o video_bktr.o netcam.o netcam_http.o netcam_ftp.o netcam_jpeg.o netcam_wget.o netcam_rtsp.o track.o alg.o event.o picture.o rotate.o translate.o ffmpeg.o util.o dbse.o webu_status.o webu.o webu_html.o webu_stream.o webu_text.o mmalcam.o /usr/local/lib/libintl.so.8.0 /usr/local/lib/libiconv.so.7.1 -Wl,-rpath,/usr/local/lib -pthread -L/usr/local/lib -ljpeg -L/usr/local/lib -lmicrohttpd -L/usr/local/lib -lwebpmux -L/usr/local/lib -Wl,-rpath-link,/usr/local/lib -Wl,-rpath-link,/usr/local/lib:/usr/X11R6/lib -lavutil -lavformat -lavcodec -lswscale -lavdevice -L/usr/local/lib -lsqlite3 motion.c(motion.o:(motion_loop)): warning: sprintf() is often misused, please use snprintf() motion.c(motion.o:(motion_loop)): warning: strcat() is almost always misused, please use strlcat() conf.c(conf.o:(copy_string)): warning: strcpy() is almost always misused, please use strlcpy() util.c(util.o:(util_parms_add)): warning: stpcpy() is dangerous; do not use it webu.c(webu.o:(webu_start)): warning: rand() may return deterministic values, is that what you want? ld: error: undefined symbol: WebPConfigInitInternal >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPPictureInitInternal >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPPictureAlloc >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPMemoryWriterInit >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPMemoryWrite >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPEncode >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPMemoryWriterClear >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPPictureFree >>> referenced by picture.c >>> picture.o:(put_picture) ld: error: undefined symbol: WebPFree >>> referenced by picture.c >>> picture.o:(put_picture) cc: error: linker command failed with exit code 1 (use -v to see invocation) gmake[2]: *** [Makefile:424: motion] Error 1 -- Antoine
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: mar...@cvs.openbsd.org 2023/09/13 05:06:23 Modified files: archivers/blosc: Makefile distinfo Log message: Update blosc to 1.21.5.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 04:55:26 Modified files: audio/py-acoustid: Makefile distinfo audio/py-acoustid/pkg: PLIST Log message: update to py3-acoustid-1.3.0
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 04:09:05 Modified files: lang/php : Makefile.inc lang/php/7.4 : Makefile lang/php/8.0 : Makefile lang/php/8.1 : Makefile lang/php/8.2 : Makefile telephony/asterisk: Makefile.inc telephony/asterisk/16: Makefile telephony/asterisk/18: Makefile telephony/asterisk/20: Makefile Log message: the PORTROACH definition in bsd.port.mk moved to a better place so we can use a default with ?= and just override with an empty var on the highest version rather than setting for each dir
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 03:55:51 Modified files: math/gnuplot : Makefile distinfo math/gnuplot/patches: patch-configure math/gnuplot/pkg: PLIST Removed files: math/gnuplot/patches: patch-src_command_c Log message: update to gnuplot-5.4.8, modified from a diff by gonzalo@, maintainer timeout
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 03:36:32 Modified files: misc/remind: Makefile distinfo misc/remind/pkg: PLIST Log message: update to remind-4.2.6, from Martin Ziemer (maintainer)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2023/09/13 03:28:39 Modified files: net/bro: Makefile distinfo net/bro/patches: patch-CMakeLists_txt net/bro/pkg: PLIST Log message: SECURITY update to zeek-6.0.1.
Re: CVS: cvs.openbsd.org: ports
On Wed, Sep 13, 2023 at 09:45:30AM +0200, Marc Espie wrote: > On Wed, Sep 13, 2023 at 08:42:03AM +0200, Antoine Jacoutot wrote: > > On Sat, Sep 09, 2023 at 06:35:16AM -0600, Marc Espie wrote: > > > CVSROOT: /cvs > > > Module name: ports > > > Changes by: es...@cvs.openbsd.org 2023/09/09 06:35:16 > > > > > > Modified files: > > > devel/autoconf : Makefile.inc > > > devel/autoconf/2.71: Makefile > > > devel/automake : Makefile.inc > > > devel/automake/1.16: Makefile > > > > > > Log message: > > > don't limit the newest autoconf/automake > > > so that we get notifications of new versions > > > > > > That doesn't seem to work here. > > > > $ cd /usr/ports/devel/automake && make show=PORTROACH > > ===> devel/automake/1.4 > > > > ===> devel/automake/1.8 > > > > ===> devel/automake/1.9 > > > > ===> devel/automake/1.10 > > > > ===> devel/automake/1.11 > > > > ===> devel/automake/1.12 > > > > ===> devel/automake/1.13 > > > > ===> devel/automake/1.14 > > > > ===> devel/automake/1.15 > > > > ===> devel/automake/1.16 > > > > -- > > Antoine > > > That's because PORTROACH was added in the wrong place years ago... fixing it Well it worked fine before your change. -- Antoine
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2023/09/13 02:27:23 Modified files: devel/cereal : Makefile Log message: cereal: the packaged cmake files are not arch-independent so remove PKG_ARCH=*
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: es...@cvs.openbsd.org 2023/09/13 01:47:11 Modified files: infrastructure/mk: bsd.port.mk Log message: set PORTROACH *after* other stuff has had a chance to deal with it as noticed by aja@
Re: CVS: cvs.openbsd.org: ports
On Wed, Sep 13, 2023 at 08:42:03AM +0200, Antoine Jacoutot wrote: > On Sat, Sep 09, 2023 at 06:35:16AM -0600, Marc Espie wrote: > > CVSROOT:/cvs > > Module name:ports > > Changes by: es...@cvs.openbsd.org 2023/09/09 06:35:16 > > > > Modified files: > > devel/autoconf : Makefile.inc > > devel/autoconf/2.71: Makefile > > devel/automake : Makefile.inc > > devel/automake/1.16: Makefile > > > > Log message: > > don't limit the newest autoconf/automake > > so that we get notifications of new versions > > > That doesn't seem to work here. > > $ cd /usr/ports/devel/automake && make show=PORTROACH > ===> devel/automake/1.4 > > ===> devel/automake/1.8 > > ===> devel/automake/1.9 > > ===> devel/automake/1.10 > > ===> devel/automake/1.11 > > ===> devel/automake/1.12 > > ===> devel/automake/1.13 > > ===> devel/automake/1.14 > > ===> devel/automake/1.15 > > ===> devel/automake/1.16 > > -- > Antoine > That's because PORTROACH was added in the wrong place years ago... fixing it
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:43:43 Modified files: www/tor-browser/browser/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: www/tor-browser/browser: rw should be enough for /dev/dri pointed out by claudio@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:42:37 Modified files: www/firefox-esr/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: www/firefox-esr: rw should be enough for /dev/dri pointed out by claudio@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:42:07 Modified files: www/mozilla-firefox/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: www/mozilla-firefox: rw should be enough for /dev/dri pointed out by claudio@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:39:21 Modified files: www/tor-browser/browser/files: unveil.content unveil.gpu unveil.main Log message: www/tor-browser/browser: rw should be enough for /dev/dri pointed out by claudio@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:38:40 Modified files: www/firefox-esr/files: unveil.content unveil.gpu unveil.main Log message: www/firefox-esr: rw should be enough for /dev/dri pointed out by claudio@
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 01:38:15 Modified files: www/mozilla-firefox/files: unveil.content unveil.gpu unveil.main Log message: www/mozilla-firefox: rw should be enough for /dev/dri pointed out by claudio@
Re: CVS: cvs.openbsd.org: ports
On Sat, Sep 09, 2023 at 06:35:16AM -0600, Marc Espie wrote: > CVSROOT: /cvs > Module name: ports > Changes by: es...@cvs.openbsd.org 2023/09/09 06:35:16 > > Modified files: > devel/autoconf : Makefile.inc > devel/autoconf/2.71: Makefile > devel/automake : Makefile.inc > devel/automake/1.16: Makefile > > Log message: > don't limit the newest autoconf/automake > so that we get notifications of new versions That doesn't seem to work here. $ cd /usr/ports/devel/automake && make show=PORTROACH ===> devel/automake/1.4 ===> devel/automake/1.8 ===> devel/automake/1.9 ===> devel/automake/1.10 ===> devel/automake/1.11 ===> devel/automake/1.12 ===> devel/automake/1.13 ===> devel/automake/1.14 ===> devel/automake/1.15 ===> devel/automake/1.16 -- Antoine
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:22:08 Modified files: www/tor-browser/browser: Tag: OPENBSD_7_3 Makefile www/tor-browser/browser/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: MFC: tor-browser: sync DRM unveil with firefox-esr Instead of unveiling /dev/dri/card0 only, unveil the entire directory. It only contains four card* and and four renderD* with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:20:43 Modified files: www/firefox-esr: Tag: OPENBSD_7_3 Makefile www/firefox-esr/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: MFC: firefox-esr: sync DRM unveil with mozilla-firefox Instead of unveiling /dev/dri/card0 only, unveil the entire directory. It only contains four card* and and four renderD* with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:19:14 Modified files: www/mozilla-firefox: Tag: OPENBSD_7_3 Makefile www/mozilla-firefox/files: Tag: OPENBSD_7_3 unveil.content unveil.gpu unveil.main Log message: MFC: mozilla-firefox: fix unveil for DRM device nodes Instead of unveiling /dev/dri/card0 only, unveil the entire directory. It only contains four card* and and four renderD* with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:15:48 Modified files: www/tor-browser/browser: Makefile www/tor-browser/browser/files: unveil.content unveil.gpu unveil.main Log message: tor-browser: sync DRM unveil with firefox-esr Instead of unveiling /dev/dri/card0 only, unveil the entire directory. It only contains four card* and and four renderD* with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:14:04 Modified files: www/firefox-esr: Makefile www/firefox-esr/files: unveil.content unveil.gpu unveil.main Log message: firefox-esr: sync DRM unveil with mozilla-firefox Instead of unveiling /dev/dri/card0 only, unveil the entire directory. It only contains four card* and and four renderD* with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: t...@cvs.openbsd.org2023/09/13 00:12:18 Modified files: www/mozilla-firefox: Makefile www/mozilla-firefox/files: unveil.content unveil.gpu unveil.main Log message: mozilla-firefox: fix unveil for DRM device nodes Instead of unveiling /dev/dri/card0, unveil the entire /dev/dri directory. It contains four card* and and four renderD* nodes with tight permissions. This is also the approach taken by the chromium based browsers. According to kettenis, acceleration on rare multi-graphics card setups can require multiple renderD* devices. Starting with firefox 118, if the directory isn't present, fallback code can exercise ioctls that aren't permitted by the kernel, leading to crashes. ok landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 00:05:28 Modified files: mail/mozilla-thunderbird: Tag: OPENBSD_7_3 Makefile distinfo Log message: mail/mozilla-thunderbird: security update to 102.15.1. see https://www.thunderbird.net/en-US/thunderbird/102.15.1/releasenotes/ fixes https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/ CVE-2023-4863: Heap buffer overflow in libwebp
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2023/09/13 00:05:22 Modified files: mail/mozilla-thunderbird: Makefile distinfo mail/thunderbird-i18n: Makefile.inc distinfo Log message: mail/mozilla-thunderbird: security update to 115.2.2. see https://www.thunderbird.net/en-US/thunderbird/115.2.2/releasenotes/ fixes https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/ CVE-2023-4863: Heap buffer overflow in libwebp
